Re: DJB's students release 44 *nix software vulnerability advisories
From: milw0rm Inc. (milw0rm_at_gmail.com)
Date: Tue, 21 Dec 2004 14:34:20 -0600 To: firstname.lastname@example.org
Regarding local versus remote, look at it this way: You have a 100%
secure system. Then you install NASM. Now a user FROM THE NETWORK can
send you some tainted assembly code for you to assemble and he can
compromise your account.
quote "for you to assemble"
Its a user error. Your not remotely exploiting anything but the trust
from the user.